Empris PHP script allows remote attackers to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Empris | Emergenices_personnel_information_system | 0.4 (including) | 0.4 (including) |
| Empris | Emergenices_personnel_information_system | 2001-08-10 (including) | 2001-08-10 (including) |
| Empris | Emergenices_personnel_information_system | 2001-09-08 (including) | 2001-09-08 (including) |